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Amendments to the Claims 

This listing of claims will replace all prior versions of claims in the application: 
Listing of Claims: 

1. (Previously Presented) An automation security system, comprising: 
a plurality of automation assets; 

a plurality of remote devices or networks that utilize a factory protocol to transport data 
among end points of a communication channel; and between the plurality of automation assets 
and the plurality of remote devices or networks, the factory protocol utilizes at least one security 
field associated with the factory protocol to authenticate at least one of a requestor of the data 
and a supplier of the data, the security field provides at least one of a security parameter or a 
performance parameter, the factory protocol lowers encryption protocol standards for real time 
performance is dynamically changed or adjusted based upon considerations of desired security 
levels and real time communications performance and employs lightweight or heavyweight 
encryption mechanisms based on the performance parameter. 

2. (Original) The system of claim 1, the security field further comprises path information to at 
least one of identify a requester/supplier of a connection, authenticate the requestor, and/or 
authenticate the supplier. 

3. (Original) The system of claim 2, the path information facilitates non-connected data 
access by sending out an open-ended message. 

4. (Original) The system of claim 1, the end points include at least one automation asset, the 
automation asset includes at least one of a controller, a communications module, a computer, a 
sensor actuator, a network sensor, an I/O device, a Human Machine Interface (HMI), an I/O 
module, and a network device. 
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5. (Original) The system of claim 1, the network communications channel is established 
across at least one of a control network, factory network, information network, private network, 
instrumentation network, a wireless network, and a public network. 



6-8. (Cancelled) 



9. (Original) The system of claim 1, the factory protocol including at least one of a time 
component to mitigate replay attacks, a message integrity component, a digital signature, a 
sequence field to mitigate replaying an old packet, a pseudo random sequence, an encryption 
field, and a dynamic security adjustment field. 

10. (Original) The system of claim 1, the factory protocol is adapted to at least one of a 
Control and Information Protocol (CIP) and .an object model that protects configuration of and 
transport of data between intelligent devices. (Original) 

11. (Original) The system of claim 1, further comprising a component to at least one of 
provide source validation for identification, perform message digest checking for integrity 
checking, perform check sum tests, provide integrity mechanisms, provide encryption 
mechanisms, and provide refresh security protocols. 

12. (Original) The system of claim 1, the factory protocol facilitates at least one of an 
identification, an authentication, an authorization, and a ciphersuite negotiation to establish 
network trusts. 

13. (Original) The system of claim 1, the factory protocol is associated with a protocol 
supporting at least one of a Temporal Key Interchange Protocol (TKIP) and a wireless protocol. 
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14. (Original) The system of claim 1, the protocol employing at least one of an Elliptical 
function, an Aziz/Diffie Protocol, a Kerberos protocol, a Beller-Yacobi Protocol, an Extensible 
authentication protocol (EAP), an MSR+DH protocol, a Future Public Land Mobile 
Telecommunication Systems Wireless Protocols (FPLMTS), a Beller-Chang-Yacobi Protocol, a 
Diffie-Hellman Key Exchange, a Parks Protocol, an ASPeCT Protocol, a TMN Protocol, 
RADIUS, Groupe Special Mobile (GSM) protocol and a Cellular Digital Packet Data (CDPD) 
protocol. 

15. (Original) The system of claim 1, the network communications channel employing at 
least one of a Control and Information Protocol (CIP) network, a DeviceNet network, a 
ControlNet network , an Ethernet network , DH/DH+ network , a Remote I/O network, a 
Fieldbus network, a Modbus network, a Profibus network. 

16. (Original) The system of claim 1, further comprising a security field to limit access based 
upon line of sight parameters. 

17. (Previously Presented) A method to facilitate factory automation network security, 
comprising: 

determining network security requirements for an industrial automation system including a 
requirement for real-time performance; 

adapting a wireless security protocol to the industrial automation system by lowering the 
security requirements if real-time performance is required; [[and]] 

employing the wireless security protocol to communicate with the industrial automation 
system^,]] ; and 

dynamically selecting a lightweight or heavyweight encryption mechanism based the 
network security requirements . 

18. (Original) The method of claim 17, further comprising encapsulating an automation 
protocol in a TKIP protocol. 
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19. (Original) The method of claim 17, further comprising utilizing at least one of a 
Temporal Key Interchange Protocol (TKIP) and an Elliptical function in the wireless security 
protocol. 

20. (Previously Presented) A method to facilitate automation network security, comprising: 
determining a need for real-time communication; 

establishing a communications session with an automation asset via a heavyweight 
encryption mechanism strong security protocol if real-time communications is not needed; and 

exchanging data with the automation asset in accordance with real time communications 
via a lightweight encryption mechanism security protocol that induces minimal impact on a 
system's performance if real-time communication is needed. 

21. (Original) The method of claim 20, further comprising dynamically switching between 
the extended security protocol and the lightweight security protocol during the real time 
communications. 

22. (Original) The method of claim 20, the lightweight security protocol includes at least one 
of time component to mitigate replay attacks, a message integrity component, a digital signature, 
a sequence field to mitigate replaying an old packet, a pseudo random sequence, an encryption 
field, and a dynamic security adjustment field. 

23. (Original) The method of claim 20, the path component further comprising a component 
to identify a requestor of data. 
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24. (Previously Presented) An automation security system, comprising: 

means for encoding a security component within a factory protocol , the factory protocol 
includes including at least one of a security parameter or a performance parameter that is 
determined by at least one automation asset ; 

means for transmitting the security component and the factory protocol across a network 
using a first standard of security if the at least one of a security parameter or a performance 
parameter dictates real-time performance is required, and a second standard of security if the at 
least one of a security parameter or a performance parameter dictates that real-time performance 
is not required, the first standard of security is lower than the second; and 

means for the at least one automation asset to decode decoding the security component in 
order to facilitate a secure communications channel across the network. 

25. (Previously Presented) An automation security system, comprising: 

an automation device that utilizes a factory protocol adapted for network 
communications; 

a factory protocol utilized by the automation device for network communications; 

a parameter detection component that detects at least one of a security or a performance 
parameter, the factory protocol utilizes a first standard of security if the at least one of a security 
or performance parameter dictates a lightweight encryption mechanism if real-time performance 
is required, and a second standard of security a heavyweight encryption mechanism if the at least 
one of a security or performance parameter dictates that real-time performance is not required T 
the first standard of security is lower than the second ; and 

an intrusion detection component adapted for the factory protocol to detect network 
attacks directed to the automation device. 

26. (Original) The system of claim 25, the intrusion detection component is at least one of a 
host-based component and a network-based component. 

27. (Original) The system of claim 25, the intrusion detection component is adapted to at 
least one of an attack signature, an address, an address range, a counter, a location, a time, an 
event, a control list, a virus and a Trojan executable. 
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28. (Previously Presented) A security violation detection methodology, comprising: 
adapting an industrial network protocol in accordance with an intrusion detection 

technology; and 

monitoring the industrial network protocol for an attack via the intrusion detection 
technology, the monitoring is conducted at a first security level if real-time performance is 
requested and a second security level if real-time performance is not requested, the first security 
level is lower than the second[[.]]; 

automatically performing a security action after detecting the attack, the security action 
includes at least one of enabling an alarm, denying network access or removing a virus. 

29. (Original) The method of claim 28, further comprising monitoring a network for flooding 



attacks. 



30. 



(Cancelled) 



31. 



(Cancelled) 



7 



